An autonomous AI agent found 21 zero-day vulnerabilities in FFmpeg while Chrome patched a record 429 bugs. Here is what that means for every team shipping software today.
Unmonitored AI tools are adding hundreds of thousands of dollars to breach costs. Here is what is actually happening and why your governance gap is the problem.
Anthropic’s Glasswing expansion and OpenAI’s internal drama show AI is being sold as defence, but the threat landscape is moving faster than the governance.
ChatGPhish shows how attackers can turn AI-generated web summaries into a phishing surface. Here’s why your team needs to treat AI links like untrusted content.
Attackers are using ChatGPT's own content sharing feature to host malicious pages on chatgpt.com, tricking users into downloading malware through Google Ads. The LLMShare campaign exploits the very domain trust we've spent decades building.
A critical vulnerability in Starlette, the Python framework behind FastAPI and most AI serving infrastructure, allows attackers to bypass authentication with a single manipulated character. Millions of AI agents and MCP servers are exposed.
Over 300,000 ChatGPT account credentials were stolen by infostealer malware in 2025. IBM's latest X-Force report reveals attackers are using AI to supercharge old tactics, not invent new ones. Here's what businesses need to do about it.
The 2026 threat landscape is here, and it's powered by autonomous AI agents and synthetic identities. Here's why your current security setup is likely bringing a knife to a gunfight.
A viral AI-generated video this week proved what intelligence agencies have been warning about for months. Synthetic media is no longer a theoretical threat. Australian organisations need to pay attention.
The NSA has published its first formal cybersecurity guidance targeting Model Context Protocol (MCP), the technology connecting AI assistants to your files, databases, and business systems. The finding: deployment has outpaced security, and real-world exploits are already happening.
GitHub confirmed 3,800 internal repositories were compromised after one developer installed a poisoned VS Code extension. The same hacking group has hit Trivy, Checkmarx, Bitwarden CLI, and TanStack in 2026 alone. Here's what it means for your team.
